$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: TQJ17ODVcGaBIBOa/HwAKcFdGogVahwfbalMY+s2iAk= Subject key identifier: 7A:FC:7B:6D:B6:06:EE:DB:FC:4A:DC:6A:82:3C:3B:EE:1E:FE:B5:6D Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 210EE04152FBFC11DBA8BEB72CCE29AE12123378 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 23 May 2025 04:08:54 +0000 ROA not before: Fri 23 May 2025 04:03:54 +0000 ROA not after: Fri 22 May 2026 04:08:54 +0000 asID: 133798 IP address blocks: 2402:5680:9b30::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:0e:e0:41:52:fb:fc:11:db:a8:be:b7:2c:ce:29:ae:12:12:33:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 23 04:03:54 2025 GMT Not After : May 22 04:08:54 2026 GMT Subject: CN=7AFC7B6DB606EEDBFC4ADC6A823C3BEE1EFEB56D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:da:96:fa:4d:e6:6a:f4:88:84:36:21:99: 2a:9c:9c:b2:f1:58:34:e0:9c:7d:7a:83:69:28:0c: 37:58:88:73:32:d2:46:ee:08:20:4f:b3:79:62:a1: b3:c4:82:e4:49:a1:96:9e:ea:c8:8b:c6:ba:c9:ee: fe:f6:f2:2a:f3:e5:3d:fa:59:14:08:63:aa:ab:83: 51:42:aa:e0:fb:14:ed:c5:dc:1e:96:d7:f2:c4:0e: 42:c0:69:c9:7c:07:02:c5:b3:06:13:e8:6b:53:6f: 4c:3c:56:4e:0a:cf:d9:6f:cf:43:05:da:19:f0:b0: 3a:cf:a1:33:63:ee:33:21:ec:95:60:f9:ea:eb:b8: 6b:b0:b2:5b:de:72:cb:db:cd:e5:b4:d6:38:82:bd: 77:17:cd:c4:0f:91:91:02:80:dc:77:fb:3d:98:0f: f8:a0:b3:d3:56:a7:f6:f3:4c:bb:68:32:ab:f7:c5: c3:08:dd:cd:93:f7:e4:ef:c1:aa:67:f9:e1:17:ea: 01:6f:8d:6d:f8:d9:92:cc:52:67:ac:ea:a6:fa:f4: 6f:5c:2e:51:d9:e1:26:7d:27:00:4a:1e:a4:15:e3: 48:01:ee:4c:d3:ed:87:1e:5b:f6:f9:3a:ba:79:cf: 6d:88:60:d2:17:99:5e:e7:45:07:5f:10:bc:a6:0f: 2b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FC:7B:6D:B6:06:EE:DB:FC:4A:DC:6A:82:3C:3B:EE:1E:FE:B5:6D X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9b30::/44 Signature Algorithm: sha256WithRSAEncryption b6:af:1c:ac:3b:eb:06:81:ae:9d:b4:43:b9:f1:ef:8e:d5:ac: 91:46:08:e4:b9:0b:47:71:9f:42:34:05:7b:89:3a:6d:0c:ea: 8c:d8:d0:8e:f4:43:f1:8b:6a:40:74:4b:b3:14:ef:1c:d8:ba: a3:84:19:94:6a:7c:82:76:50:2a:29:06:a7:89:b9:8b:b2:aa: 9d:17:48:14:fc:b8:35:60:0f:5d:bb:9c:58:b4:2e:6e:52:46: 05:5d:29:1f:85:ee:dd:81:48:e2:94:68:5b:c8:d1:98:fe:c5: bd:4f:f8:a6:7b:9f:b1:25:d6:1d:e9:78:79:67:39:9c:0c:c9: d9:6d:6f:d0:b6:3c:ff:c2:e8:98:53:fe:88:33:53:29:d1:e8: c4:94:45:d3:76:48:34:a1:70:76:85:82:02:ff:f8:e0:2c:43: 97:54:d3:a7:24:e1:55:b2:43:3a:46:a6:6f:9c:98:ce:b0:87: 93:df:94:2d:5d:10:fa:55:aa:e8:79:e9:a8:5c:f1:e6:0b:75: da:3b:95:e5:fe:fb:2b:8d:94:80:fd:6c:4d:67:5a:de:a6:bf: bb:cb:bb:09:0b:a2:4b:c4:73:f8:ef:30:c6:31:c6:be:06:c1: 41:70:17:78:e9:2c:a6:bc:f1:ff:13:06:a1:f0:75:d0:df:73: a9:47:63:14 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUIQ7gQVL7/BHbqL63LM4prhISM3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjMwNDAzNTRaFw0yNjA1MjIwNDA4NTRaMDMxMTAvBgNV BAMTKDdBRkM3QjZEQjYwNkVFREJGQzRBREM2QTgyM0MzQkVFMUVGRUI1NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCisNqW+k3mavSIhDYhmSqcnLLx WDTgnH16g2koDDdYiHMy0kbuCCBPs3liobPEguRJoZae6siLxrrJ7v728irz5T36 WRQIY6qrg1FCquD7FO3F3B6W1/LEDkLAacl8BwLFswYT6GtTb0w8Vk4Kz9lvz0MF 2hnwsDrPoTNj7jMh7JVg+erruGuwslvecsvbzeW01jiCvXcXzcQPkZECgNx3+z2Y D/igs9NWp/bzTLtoMqv3xcMI3c2T9+Tvwapn+eEX6gFvjW342ZLMUmes6qb69G9c LlHZ4SZ9JwBKHqQV40gB7kzT7YceW/b5Orp5z22IYNIXmV7nRQdfELymDyuZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUevx7bbYG7tv8Stxqgjw77h7+tW0wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzk2MjMzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmzAwDQYJKoZIhvcNAQELBQADggEBALavHKw76waBrp20Q7nx747VrJFGCOS5 C0dxn0I0BXuJOm0M6ozY0I70Q/GLakB0S7MU7xzYuqOEGZRqfIJ2UCopBqeJuYuy qp0XSBT8uDVgD127nFi0Lm5SRgVdKR+F7t2BSOKUaFvI0Zj+xb1P+KZ7n7El1h3p eHlnOZwMydltb9C2PP/C6JhT/ogzUynR6MSURdN2SDShcHaFggL/+OAsQ5dU06ck 4VWyQzpGpm+cmM6wh5PflC1dEPpVquh56ahc8eYLddo7leX++yuNlID9bE1nWt6m v7vLuwkLokvEc/jvMMYxxr4GwUFwF3jpLKa88f8TBqHwddDfc6lHYxQ= -----END CERTIFICATE-----Generated at Thu Jun 19 12:46:47 2025 by rpki-client